Vulnerability Summary for the Week of March 15, 2010

Released
Mar 22, 2010
Document ID
SB10-081

The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.

Vulnerabilities are based on the Common Vulnerabilities and Exposures (CVE) vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High: vulnerabilities with a CVSS base score of 7.0–10.0
  • Medium: vulnerabilities with a CVSS base score of 4.0–6.9
  • Low: vulnerabilities with a CVSS base score of 0.0–3.9

Entries may include additional information provided by organizations and efforts sponsored by CISA. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletin is compiled from external, open-source reports and is not a direct result of CISA analysis. 


High Vulnerabilities

Primary
Vendor -- Product
DescriptionPublished CVSS ScoreSource & Patch Info
acidcat -- acidcat_cmsAcidcat CMS 3.5.x does not prevent access to install.asp after installation finishes, which might allow remote attackers to restart the installation process and have unspecified other impact via requests to install.asp and other install_*.asp scripts. NOTE: the final installation screen states "Important: you must now delete all files beginning with 'install' from the root directory."2010-03-167.5CVE-2010-0976
XF
MISC
MISC
alexandre_amaral -- xoops_celeparMultiple SQL injection vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote attackers to execute arbitrary SQL commands via the codigo parameter to (1) aviso.php and (2) imprimir.php, and the (3) cod_categoria parameter to categoria.php.2010-03-157.5CVE-2009-4698
XF
BID
OSVDB
MILW0RM
MILW0RM
SECUNIA
OSVDB
OSVDB
allomani -- movie_librarySQL injection vulnerability in login.php in Allomani Movies Library (Movies & Clips) 2.7.0 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action.2010-03-187.5CVE-2009-4734
XF
VUPEN
MILW0RM
allomani -- audio_&_video_librarySQL injection vulnerability in login.php in Allomani Audio & Video Library (Songs & Clips version) 2.7.0 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action.2010-03-187.5CVE-2009-4735
XF
VUPEN
MILW0RM
andrews-web -- aw-banneradMultiple SQL injection vulnerabilities in Admin/index.asp in Andrews-Web (A-W) BannerAd 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) User and (2) Password parameters. NOTE: some of these details are obtained from third party information.2010-03-187.5CVE-2009-4721
VUPEN
MILW0RM
SECUNIA
apple -- safariApple Safari before 4.0.5 on Windows does not properly validate external URL schemes, which allows remote attackers to open local files and execute arbitrary code via a crafted HTML document.2010-03-159.3CVE-2010-0045
BID
CONFIRM
APPLE
apple -- safariUse-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.2010-03-159.3CVE-2010-0048
BID
CONFIRM
APPLE
apple -- safariUse-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via HTML elements with right-to-left (RTL) text directionality.2010-03-159.3CVE-2010-0049
BID
CONFIRM
APPLE
apple -- safariUse-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the run-in Cascading Style Sheets (CSS) display property.2010-03-159.3CVE-2010-0053
BID
CONFIRM
APPLE
barnowl -- barnowlBuffer overflow in BarnOwl before 1.5.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted CC: header.2010-03-167.5CVE-2010-0793
CONFIRM
bob_jewell -- discloserSQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter.2010-03-187.5CVE-2009-4719
BID
BUGTRAQ
MILW0RM
boldfx -- model_agency_manager_proSQL injection vulnerability in photos.php in Model Agency Manager PRO (formerly Modeling Agency Content Management Script) allows remote attackers to execute arbitrary SQL commands via the album parameter.2010-03-187.5CVE-2009-4731
XF
BID
SECUNIA
MISC
broadcom -- broadcomUnspecified vulnerability in the Broadcom Integrated NIC Management Firmware 1.x before 1.40.0.0 and 8.x before 8.08 on the HP Small Form Factor and Microtower platforms allows remote attackers to execute arbitrary code via unknown vectors.2010-03-1810.0CVE-2010-0104
CERT-VN
HP
VUPEN
BID
SECTRACK
SECUNIA
HP
chris_simon -- com_abbrevDirectory traversal vulnerability in the Abbreviations Manager (com_abbrev) component 1.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.2010-03-167.5CVE-2010-0985
XF
BID
MISC
SECUNIA
OSVDB
dirk_maiwert -- datamints_newstickerSQL injection vulnerability in the datamints Newsticker (datamints_newsticker) extension before 0.7.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.2010-03-157.5CVE-2009-4709
CONFIRM
BID
g4j.laoneo -- com_gcalendarDirectory traversal vulnerability in the GCalendar (com_gcalendar) component 2.1.5 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.2010-03-167.5CVE-2010-0972
XF
MISC
SECUNIA
geekhelps -- admpSQL injection vulnerability in bannershow.php in Geekhelps ADMP 1.01 allows remote attackers to execute arbitrary SQL commands via the click parameter.2010-03-167.5CVE-2010-0968
VUPEN
MISC
gnudip -- gnudipSQL injection vulnerability in cgi-bin/gnudip.cgi in GnuDIP 2.1.1 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.2010-03-187.5CVE-2009-4720
SECUNIA
OSVDB
MISC
gonafish -- webstatcaffeSQL injection vulnerability in visitorduration.php in Gonafish WebStatCaffe allows remote attackers to execute arbitrary SQL commands via the nodayshow parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.2010-03-157.5CVE-2009-4718
SECUNIA
jan_bednarik -- cooluriSQL injection vulnerability in the CoolURI (cooluri) extension before 1.0.16 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2008-6686.2010-03-157.5CVE-2009-4711
CONFIRM
BID
SECUNIA
jorik_berkepas -- phpmylogonSQL injection vulnerability in phpmylogon.php in PhpMyLogon 2 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.2010-03-167.5CVE-2010-0970
XF
VUPEN
MISC
junglescripts -- ajax_short_url_scriptSQL injection vulnerability in x/login in JungleScripts Ajax Short Url Script allows remote attackers to execute arbitrary SQL commands via the username parameter.2010-03-187.5CVE-2009-4727
VUPEN
MILW0RM
SECUNIA
limny -- limnySQL injection vulnerability in the CheckLogin function in includes/functions.php in Limny 1.01, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter.2010-03-187.5CVE-2009-4722
XF
OSVDB
MILW0RM
SECUNIA
liviu_mitrofan -- myth_downloadSQL injection vulnerability in the Myth download (myth_download) extension 0.1.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.2010-03-157.5CVE-2009-4701
CONFIRM
markus_barchfeld -- pm_tourSQL injection vulnerability in the Tour Extension (pm_tour) extension before 0.0.13 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.2010-03-157.5CVE-2009-4702
CONFIRM
maximo_cuadros -- gb_fenewssubmitSQL injection vulnerability in the [Gobernalia] Front End News Submitter (gb_fenewssubmit) extension 0.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.2010-03-157.5CVE-2009-4708
CONFIRM
media-products -- eros_webkatalogSQL injection vulnerability in start.php in Eros Webkatalog allows remote attackers to execute arbitrary SQL commands via the id parameter in a rubrik action.2010-03-167.5CVE-2010-0964
XF
MISC
SECUNIA
MISC
OSVDB
MISC
mitchell_sleeper -- l4d_statsSQL injection vulnerability in player.php in Left 4 Dead (L4D) Stats 1.1 allows remote attackers to execute arbitrary SQL commands via the steamid parameter.2010-03-167.5CVE-2010-0980
XF
MISC
SECUNIA
MISC
OSVDB
MISC
netpet -- netpet_cmsDirectory traversal vulnerability in confirm.php in Netpet CMS 1.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.2010-03-187.5CVE-2009-4723
VUPEN
MILW0RM
paymentprocessorscript.net -- ppscriptSQL injection vulnerability in shop.htm in PaymentProcessorScript.net PPScript allows remote attackers to execute arbitrary SQL commands via the cid parameter.2010-03-187.5CVE-2009-4724
MILW0RM
SECUNIA
phpcityportal -- phpcityportalMultiple SQL injection vulnerabilities in PHPCityPortal allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) video_show.php, (2) spotlight_detail.php, (3) real_estate_details.php, and (4) auto_details.php.2010-03-167.5CVE-2010-0974
XF
BID
MISC
MISC
phpcityportal -- phpcityportalPHP remote file inclusion vulnerability in external.php in PHPCityPortal allows remote attackers to execute arbitrary PHP code via a URL in the url parameter.2010-03-167.5CVE-2010-0975
XF
MISC
MISC
questions_answered -- questions_answeredSQL injection vulnerability in the administrative interface in Questions Answered 1.3 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.2010-03-187.5CVE-2009-4728
VUPEN
MILW0RM
robert_heel -- cwt_resetbepasswordSQL injection vulnerability in the Reset backend password (cwt_resetbepassword) extension 1.20 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.2010-03-157.5CVE-2009-4710
BID
CONFIRM
SECUNIA
scripteverkauf -- domain_verkaus_and_auktions_portalSQL injection vulnerability in index.php in phppool media Domain Verkaus and Auktions Portal allows remote attackers to execute arbitrary SQL commands via the id parameter.2010-03-167.5CVE-2010-0973
XF
VUPEN
MISC
SECUNIA
MISC
templateplazza -- com_tpjobsSQL injection vulnerability in the TPJobs (com_tpjobs) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id_c[] parameter in a resadvsearch action to index.php.2010-03-167.5CVE-2010-0981
XF
VUPEN
BID
MISC
SECUNIA
MISC
OSVDB
tukanas -- easyclassifieds_scriptSQL injection vulnerability in index.php in Tukanas Classifieds (aka EasyClassifieds) Script 1.0 allows remote attackers to execute arbitrary SQL commands via the b parameter.2010-03-157.5CVE-2009-4712
SECUNIA
MISC
OSVDB
typo3 -- ws_gallerySQL injection vulnerability in the Webesse Image Gallery (ws_gallery) extension 1.0.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.2010-03-157.5CVE-2009-4703
CONFIRM
x10media -- adult_scriptSQL injection vulnerability in report.php in x10 Adult Media Script 1.7 allows remote attackers to execute arbitrary SQL commands via the id parameter.2010-03-187.5CVE-2009-4730
XF
MILW0RM
SECUNIA

Back to top


Medium Vulnerabilities

Primary
Vendor -- Product
DescriptionPublished CVSS ScoreSource & Patch Info
acidcat -- acidcat_cmsAcidcat CMS 3.5.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for databases/acidcat_3.mdb.2010-03-165.0CVE-2010-0984
XF
MISC
SECUNIA
MISC
OSVDB
alexandre_amaral -- xoops_celeparMultiple cross-site scripting (XSS) vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote attackers to inject arbitrary web script or HTML via (1) the cod_categoria parameter to categoria.php, (2) the opcao parameter to index.php, and the PATH_INFO to (3) categoria.php and (4) index.php.2010-03-154.3CVE-2009-4713
BID
MILW0RM
SECUNIA
OSVDB
OSVDB
alexandre_amaral -- xoops_celeparCross-site scripting (XSS) vulnerability in the quiz module for XOOPS Celepar allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to cadastro_usuario.php.2010-03-154.3CVE-2009-4714
OSVDB
SECUNIA
MISC
arabportal -- arab_portalDirectory traversal vulnerability in modules/aljazeera/admin/setup.php in Arab Portal 2.2 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter.2010-03-185.1CVE-2009-4725
VUPEN
BID
MILW0RM
dzcp -- dev!l'z_clanportalPHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.2010-03-166.8CVE-2010-0966
VUPEN
MISC
SECUNIA
edgephp -- ezwebsearchCross-site scripting (XSS) vulnerability in results.php in EDGEPHP EZWebSearch allows remote attackers to inject arbitrary web script or HTML via the language parameter.2010-03-154.3CVE-2009-4716
XF
OSVDB
SECUNIA
MISC
geekhelps -- admpMultiple directory traversal vulnerabilities in Geekhelps ADMP 1.01, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the style parameter to (1) colorvoid/footer.php, (2) default-green/footer.php, (3) default-orange/footer.php, and (4) default/footer.php in themes/. NOTE: some of these details are obtained from third party information.2010-03-165.1CVE-2010-0967
XF
VUPEN
MISC
SECUNIA
OSVDB
OSVDB
OSVDB
OSVDB
gnu -- cpioHeap-based buffer overflow in the rmt_read__ function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service (memory corruption) or possibly execute arbitrary code by sending more data than was requested, related to archive filenames that contain a : (colon) character.2010-03-156.8CVE-2010-0624
CONFIRM
MISC
gonafish -- webstatcaffeMultiple cross-site scripting (XSS) vulnerabilities in Gonafish WebStatCaffe allow remote attackers to inject arbitrary web script or HTML via the (1) host parameter to stat/host.php, nodayshow parameter to (2) mostvisitpage.php and (3) visitorduration.php in stat/, (4) nopagesmost parameter to stat/mostvisitpagechart.php, and date parameter to (5) pageviewers.php, (6) pageviewerschart.php, and (7) referer.php in stat/.2010-03-154.3CVE-2009-4717
SECUNIA
MISC
jevci.net -- jevci_siparis_formu_scriptiJevci Siparis Formu Scripti stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for siparis.mdb.2010-03-165.0CVE-2010-0965
XF
SECUNIA
MISC
OSVDB
joomlamo -- com_cartweberpDirectory traversal vulnerability in the CARTwebERP (com_cartweberp) component 1.56.75 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.2010-03-164.3CVE-2010-0982
BID
SECUNIA
MISC
OSVDB
kmsoft -- guestbookKMSoft Guestbook (aka GBook) 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/db.mdb.2010-03-165.0CVE-2010-0978
XF
MISC
SECUNIA
MISC
OSVDB
linux -- kernelThe nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service (BUG and system crash) by locking a file on an NFS filesystem and then changing this file's permissions, a related issue to CVE-2010-0727.2010-03-164.7CVE-2007-6733
CONFIRM
CONFIRM
REDHAT
linux -- kernelThe gfs2_lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfs_lock function in the Linux kernel on Red Hat Enterprise Linux (RHEL) 5 and 6, does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service (BUG and system crash) by locking a file on a (1) GFS or (2) GFS2 filesystem, and then changing this file's permissions.2010-03-164.7CVE-2010-0727
CONFIRM
MLIST
MLIST
maximo_cuadros -- gb_fenewssubmitCross-site scripting (XSS) vulnerability in the [Gobernalia] Front End News Submitter (gb_fenewssubmit) extension 0.1.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.2010-03-154.3CVE-2009-4707
CONFIRM
nlnet_labs -- unboundUnbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.2010-03-165.0CVE-2010-0969
MLIST
BID
SECUNIA
OSVDB
obsession-design -- image-galleryCross-site scripting (XSS) vulnerability in display.php in Obsession-Design Image-Gallery (ODIG) 1.1 allows remote attackers to inject arbitrary web script or HTML via the folder parameter.2010-03-164.3CVE-2010-0979
VUPEN
SECUNIA
MISC
olivier_michaud_pierre-yves -- quickdev4phpDirectory traversal vulnerability in download.php in Quickdev 4 PHP allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.2010-03-185.0CVE-2009-4726
VUPEN
MILW0RM
SECUNIA
pango -- pangoArray index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.2010-03-184.3CVE-2010-0421
CONFIRM
CONFIRM
VUPEN
BID
REDHAT
SECTRACK
php -- phpThe xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpc_decode_request function, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) and possibly have unspecified other impact via a crafted argument.2010-03-165.0CVE-2010-0397
BID
MLIST
CONFIRM
phpscriptsnow -- real_time_currency_exchangeCross-site scripting (XSS) vulnerability in rates.php in Real Time Currency Exchange allows remote attackers to inject arbitrary web script or HTML via the Amount parameter.2010-03-154.3CVE-2009-4715
XF
OSVDB
SECUNIA
MISC
pordus -- pd_portalPD PORTAL 4.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/db.mdb.2010-03-165.0CVE-2010-0977
MISC
SECUNIA
MISC
OSVDB
pulseaudio -- pulseaudioThe pa_make_secure_dir function in core-util.c in PulseAudio 0.9.10 and 0.9.19 allows local users to change the ownership and permissions of arbitrary files via a symlink attack on a /tmp/.esd-##### temporary file.2010-03-186.9CVE-2009-1299
CONFIRM
DEBIAN
CONFIRM
MISC
redhat -- enterprise_linuxA certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 4 on the ia64 platform allows local users to use ptrace on an arbitrary process, and consequently gain privileges, via vectors related to a missing ptrace_check_attach call.2010-03-166.9CVE-2010-0729
CONFIRM
BID
MLIST
sebastian_winterhalder -- mailformCross-site scripting (XSS) vulnerability in the Mailform (mailform) extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.2010-03-154.3CVE-2009-4706
CONFIRM
skadate -- skadate_online_dating_softwareMultiple cross-site scripting (XSS) vulnerabilities in SkaDate Dating allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) admin/auth.php and (2) file_uploader.php.2010-03-154.3CVE-2009-4699
XF
BID
MILW0RM
SECUNIA
OSVDB
OSVDB
skadate -- skadate_online_dating_softwareDirectory traversal vulnerability in index.php in SkaDate Dating allows remote attackers to read arbitrary files via a .. (dot dot) in the layout parameter.2010-03-155.0CVE-2009-4700
XF
BID
MILW0RM
SECUNIA
OSVDB
supercrackmunkey -- simpleloginsysSQL injection vulnerability in checkuser.php in SimpleLoginSys 0.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.2010-03-185.1CVE-2009-4733
VUPEN
MILW0RM
technotoad -- tt_web_site_managerSQL injection vulnerability in tt/index.php in TT Web Site Manager 0.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the tt_name parameter. NOTE: some of these details are obtained from third party information.2010-03-186.8CVE-2009-4732
VUPEN
MILW0RM
SECUNIA
thomas_loeffler -- twittersearchCross-site scripting (XSS) vulnerability in the Twitter Search (twittersearch) extension before 0.1.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.2010-03-154.3CVE-2009-4705
CONFIRM
typo3 -- ws_ecardUnspecified vulnerability in the Webesse E-Card (ws_ecard) extension 1.0.2 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors.2010-03-155.0CVE-2009-4704
CONFIRM
utilo -- rezerviPHP remote file inclusion vulnerability in include/mail.inc.php in Rezervi 3.0.2 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the root parameter, a different vector than CVE-2007-2156.2010-03-166.8CVE-2010-0983
XF
VUPEN
BID
MISC
SECUNIA
MISC
OSVDB
x10media -- adult_scriptMultiple cross-site scripting (XSS) vulnerabilities in x10 Adult Media Script 1.7 allow remote attackers to inject arbitrary web script or HTML via the (1) pic_id parameter to includes/video_ad.php, (2) category parameter to linkvideos_listing.php, (3) id parameter to templates/header1.php, and (4) key parameter to video_listing.php.2010-03-184.3CVE-2009-4729
XF
OSVDB
OSVDB
OSVDB
OSVDB
MILW0RM
SECUNIA
yuri_d'elia -- dlCross-site scripting (XSS) vulnerability in index.php in dl Download Ticket Service before 0.7 allows remote attackers to inject arbitrary web script or HTML via the t parameter, related to an invalid ticket ID. NOTE: some of these details are obtained from third party information.2010-03-164.3CVE-2010-0963
BID
CONFIRM
MLIST
SECUNIA
OSVDB

Back to top


Low Vulnerabilities

Primary
Vendor -- Product
DescriptionPublished CVSS ScoreSource & Patch Info
atutor -- atutorMultiple cross-site scripting (XSS) vulnerabilities in ATutor 1.6.4 allow remote authenticated users, with Instructor privileges, to inject arbitrary web script or HTML via the (1) Question and (2) Choice fields in tools/polls/add.php, the (3) Type and (4) Title fields in tools/groups/create_manual.php, and the (5) Title field in assignments/add_assignment.php. NOTE: some of these details are obtained from third party information.2010-03-162.1CVE-2010-0971
XF
BID
MISC
SECUNIA
MISC
OSVDB
OSVDB
OSVDB

Back to top

Please share your thoughts

We recently updated our anonymous product survey; we’d welcome your feedback.